Iptable doesn't work
From: Baruah (b_baruah@hotmail.com)Date: 12/25/01
- Previous message: Wolfgang Schelongowski: "Re: Anti Virus: Improving the defense strategy through proactiveness..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: b_baruah@hotmail.com (Baruah) Date: 25 Dec 2001 01:03:34 -0800
Hi all,
I will be very greatful to you all, if somebody help me in
providing a proper solution about the described problem below.
First, as a bit of background, this is my network (fixed
font required to view this diagram!):
+-------+
| BOX-1 +------+
+-------+ | LAN firewall
| +-------+
+-------------+ SERVER +--> ROUTER ---->INTERNET
| +-------+
+-------+ |
| BOX-N +------+
+-------+
There are several computers(1....N) connected to the SERVER.
I'm trying to put iptables instead of ipchains in my SERVER.
On the SERVER I'm running Squid as a proxy server.
Now, I want some computers to access internet and some don't.The
pc's belonging to the persons who have an account in the proxy are to
be allowed to go through.So, I tried the below configuration in my
iptables to avoid Ip-Spoofing inside my own network.
*filter
:INPUT ACCEPT [255:28806]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [13:972]
-A FORWARD -s 202.141.x.y/32 -m mac --mac-source 00:80:48:d7:72:15 -j ACCEPT
But it doesn't seem to work at all. Its allowing all the computers to
go through it.
Thanx in advance.
- Previous message: Wolfgang Schelongowski: "Re: Anti Virus: Improving the defense strategy through proactiveness..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
